Overview

overview

3

Static

static

3

3b54386d87...cf.pdf

windows7-x64

1

3b54386d87...cf.pdf

windows10-2004-x64

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3b54386d877d463b4ba38480a96ee4cf.pdf

  • Size

    70KB

  • MD5

    3b54386d877d463b4ba38480a96ee4cf

  • SHA1

    2649b30286e1bda1b900dc714d6d05c989fcead5

  • SHA256

    4ba8fc91ac7ef0d20dfa1f262568b15d55f1c476fc22e9d092de2d5970d1a9f7

  • SHA512

    c70d70e0380e1c06269199eee8ed5ef5114ffe84a2df1d25ab0a476437d21f17cb555b22cdd66e1d0e286749f96f429c5579d5d43ad1519119423c9c82c61aa3

  • SSDEEP

    1536:2Co6fmZWWH1fRyREr+nwArAu3Sq0ohZk36HVktVNQrCRpEWOpOwrKWyqvsco:YU0vVgDwI1zk36HVktVWrYphwrkqvi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3b54386d877d463b4ba38480a96ee4cf.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a1ab88ab1d95fe42a53f25e51cbf7d07

    SHA1

    bdb6e3587cddb3247e0c599bf2e1781b3bb9b740

    SHA256

    b312c1e8ff254418e33f9748f420184ec50789f0ebff82384c9b3b910d94cff9

    SHA512

    a1222f19f391374a75083d07a96d22d771b55aee4e8b291cf814989de0b5d2eed5743f57b88614c98bf80057218aa1e7cef38646e5e593491c9de176a65071cc

    Download Submit